Shannonding

**Name of the Vulnerable Software and Affected Versions** Apache RocketMQ versions 4.2.0 through 4.6.0 **Description** The issue arises when automatic topic creation is enabled in the broker by default, allowing an attacker to send a malicious topic name, such as "../../../../topic2020", from the rocketmq-client to the broker. This results in the creation of a topic folder in the parent directory of the broker, leading to a directory traversal issue. **Recommendations** For Apache RocketMQ versions 4.2.0 through 4.6.0, upgrade to Apache RocketMQ 4.6.1 or later.